70e32471c52b0130b204cabade0cffa879a3801b8cd52509a2be8fe18ae97e0f | Triage

Sharing

General

Target

pe.exe
Size

9KB
Sample

200213-72rynkmb4s
MD5

4254ad6bf09ef9e585fa9d418a3d906b
SHA1

36be5fc476951d9e4c9c4a52141c1d18ed8e0f61
SHA256

70e32471c52b0130b204cabade0cffa879a3801b8cd52509a2be8fe18ae97e0f
SHA512

5b684359a1c574725e57a406b0a9daf12a5a2fafbe6b1f7da2724e5b28212d9d34003cf7eb91e3ae3e27a8bb0cefbf037511d54a26b138872f84843aec8b0d0d

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  pe.exe
- Size
  
  9KB
- MD5
  
  4254ad6bf09ef9e585fa9d418a3d906b
- SHA1
  
  36be5fc476951d9e4c9c4a52141c1d18ed8e0f61
- SHA256
  
  70e32471c52b0130b204cabade0cffa879a3801b8cd52509a2be8fe18ae97e0f
- SHA512
  
  5b684359a1c574725e57a406b0a9daf12a5a2fafbe6b1f7da2724e5b28212d9d34003cf7eb91e3ae3e27a8bb0cefbf037511d54a26b138872f84843aec8b0d0d
Score

10^/10

evasion trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Disabling Security Tools

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2